When reviewing KRIs of the email security appliance with the Chief Information Security Officer (CISO) of an insurance company, the security engineer notices the following:
Which of the following measures should the security engineer take to ensure PII is not intercepted in transit while also preventing interruption to business?
A. Quarantine emails sent to external domains containing PII and release after inspection.
B. Prevent PII from being sent to domains that allow users to sign up for free webmail.
C. Enable transport layer security on all outbound email communications and attachments.
D. Provide security awareness training regarding transmission of PII.
How to PASS CAS-004 in First Attempt?FULL Printable PDF and Software. VALID exam to help you PASS. |
 |
C
Well, TLS might help getting it from the desktop to the exchange server, but unencrypted is plain text and it’s vulnerable once it leaves. None of these answers are fully compliant.
IMHO: perfect, same thing I noticed.
Feasible ways to get a end-to-end encryption would be using S/MIME or PGP technologies.
This is a great explanation: https://blog.mailtrap.io/smtp-security/
C. Enable transport layer security on all outbound email communications and attachments.